$ rpki-client -vvf rpki.apnic.net/member_repository/A9191D22/284001EC7B1F11EA858BCD86C4F9AE02/047A427C7E2B11EAB1B5B00DC4F9AE02.roa File: 047A427C7E2B11EAB1B5B00DC4F9AE02.roa (raw, json) Hash identifier: KZtbjZhIPVZieICSR3uXBqeTO+29IORbZVxYIdgkEd8= Subject key identifier: 64:41:60:5A:6C:20:CB:3F:35:8F:97:2A:1B:4A:72:95:84:D0:11:C6 Certificate issuer: /CN=A9191D22/serialNumber=CCFBA0B3993930EB13B7A259272AA811F8744B23 Certificate serial: 0A84 Authority key identifier: CC:FB:A0:B3:99:39:30:EB:13:B7:A2:59:27:2A:A8:11:F8:74:4B:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPugs5k5MOsTt6JZJyqoEfh0SyM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191D22/284001EC7B1F11EA858BCD86C4F9AE02/047A427C7E2B11EAB1B5B00DC4F9AE02.roa Signing time: Sun 01 Mar 2026 14:47:26 +0000 ROA not before: Tue 30 Sep 2025 20:21:40 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 135337 IP address blocks: 103.94.158.0/23 maxlen: 24 103.198.8.0/23 maxlen: 24 2001:df0:8a00::/48 maxlen: 48 2406:6840::/32 maxlen: 32 2406:6840:8::/48 maxlen: 48 2406:6840:a::/48 maxlen: 48 2406:6840:c::/48 maxlen: 48 2406:6840:e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191D22/284001EC7B1F11EA858BCD86C4F9AE02/zPugs5k5MOsTt6JZJyqoEfh0SyM.crl rsync://rpki.apnic.net/member_repository/A9191D22/284001EC7B1F11EA858BCD86C4F9AE02/zPugs5k5MOsTt6JZJyqoEfh0SyM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPugs5k5MOsTt6JZJyqoEfh0SyM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2692 (0xa84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191D22, serialNumber=CCFBA0B3993930EB13B7A259272AA811F8744B23 Validity Not Before: Sep 30 20:21:40 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a4517e-8824 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:3f:97:d6:e6:f2:12:19:e9:bf:4c:1f:5f:57: 55:3a:03:83:68:6c:5a:c7:fb:1d:5a:be:09:3e:9f: 0f:a8:be:9c:4a:e8:7b:9c:57:31:c8:3f:4b:89:de: c3:85:8d:b3:ff:c9:19:ba:a1:c2:8d:bb:3b:53:f8: 64:85:fa:e9:84:40:35:8c:08:a8:16:2e:d9:9e:35: 0e:cb:15:37:62:5c:e2:d9:34:c7:a6:bc:a4:0c:02: b3:54:10:4e:25:27:3a:9e:2b:9d:c3:f4:fc:f3:a2: 7a:f6:d9:8b:1b:c2:01:99:dd:e4:4e:1e:bc:8f:2d: 81:2a:46:9a:21:77:30:d3:98:b9:ef:2d:2f:f6:db: 14:60:48:10:b8:57:26:35:dd:17:90:29:d1:ab:da: 1d:18:26:81:72:85:ce:9a:3b:14:63:26:bc:bd:08: 71:90:2b:3e:2c:cf:fb:0d:9a:a4:48:64:66:19:ed: fd:a6:c7:b7:20:5b:bf:e3:f0:e0:c0:8d:84:ac:b2: 69:ea:5e:d4:8f:9b:af:14:6d:95:2c:2c:ae:d0:d2: c7:e8:a9:1d:28:6b:8c:b3:09:37:36:d7:2b:28:d2: fa:21:06:f8:12:86:bf:3b:e7:f6:2d:59:46:c7:35: e9:da:ea:d3:9b:d5:a3:aa:23:36:8e:2c:f1:39:cc: 13:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:41:60:5A:6C:20:CB:3F:35:8F:97:2A:1B:4A:72:95:84:D0:11:C6 X509v3 Authority Key Identifier: keyid:CC:FB:A0:B3:99:39:30:EB:13:B7:A2:59:27:2A:A8:11:F8:74:4B:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191D22/284001EC7B1F11EA858BCD86C4F9AE02/zPugs5k5MOsTt6JZJyqoEfh0SyM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPugs5k5MOsTt6JZJyqoEfh0SyM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191D22/284001EC7B1F11EA858BCD86C4F9AE02/047A427C7E2B11EAB1B5B00DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.94.158.0/23 103.198.8.0/23 IPv6: 2001:df0:8a00::/48 2406:6840::/32 Signature Algorithm: sha256WithRSAEncryption 5b:e0:bc:bd:64:1f:a4:d4:6c:a1:97:e2:1b:4c:d4:15:cb:22: ff:a8:9c:c6:67:30:f4:fa:50:eb:72:67:19:c7:be:b1:92:bc: a2:79:1e:5e:1a:c3:5d:5a:64:8e:41:33:dc:d7:8c:70:31:0e: 48:e2:8c:a5:c7:94:1b:15:23:00:1a:1b:51:9a:f1:97:43:b6: fe:b3:ef:b6:16:d6:81:ae:5e:75:ed:73:44:89:17:38:de:4f: 56:29:22:ef:7a:29:e1:bd:b8:a5:0c:83:f7:47:f3:96:77:32: 01:b7:39:66:89:99:46:ff:aa:de:e8:cb:eb:64:05:6b:b9:a6: db:2b:65:0f:9c:6d:82:bf:16:0e:98:17:1a:9e:3e:01:b2:91: a2:3d:44:f5:1c:92:41:39:ed:cd:e7:c5:f3:2b:84:7f:12:7d: 3a:52:7b:e9:32:c2:fa:dd:95:0a:e8:63:db:41:b5:24:77:f0: 71:01:07:66:b6:4f:ca:ab:2b:57:aa:8f:be:d6:e5:52:26:be: 9d:8e:09:e6:0d:3b:e0:d3:fe:98:aa:46:b5:d4:ae:0d:32:b5: fc:b9:a8:cf:f5:04:0f:19:33:6a:06:02:52:f4:bc:53:2f:b5: e3:8a:bf:23:1e:5e:5e:48:12:c1:d5:7f:b8:a4:c3:e4:cf:06: ae:ae:4d:c5 -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgICCoQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFEMjIxMTAvBgNVBAUTKENDRkJBMEIzOTkzOTMwRUIxM0I3QTI1OTI3MkFBODEx Rjg3NDRCMjMwHhcNMjUwOTMwMjAyMTQwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTE3ZS04ODI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArj+X1ubyEhnpv0wfX1dVOgODaGxax/sdWr4JPp8PqL6cSuh7nFcxyD9Lid7D hY2z/8kZuqHCjbs7U/hkhfrphEA1jAioFi7ZnjUOyxU3Ylzi2TTHprykDAKzVBBO JSc6niudw/T886J69tmLG8IBmd3kTh68jy2BKkaaIXcw05i57y0v9tsUYEgQuFcm Nd0XkCnRq9odGCaBcoXOmjsUYya8vQhxkCs+LM/7DZqkSGRmGe39pse3IFu/4/Dg wI2ErLJp6l7Uj5uvFG2VLCyu0NLH6KkdKGuMswk3NtcrKNL6IQb4Eoa/O+f2LVlG xzXp2urTm9WjqiM2jizxOcwT7QIDAQABo4ICfjCCAnowHQYDVR0OBBYEFGRBYFps IMs/NY+XKhtKcpWE0BHGMB8GA1UdIwQYMBaAFMz7oLOZOTDrE7eiWScqqBH4dEsj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUQyMi8yODQwMDFFQzdC MUYxMUVBODU4QkNEODZDNEY5QUUwMi96UHVnczVrNU1Pc1R0NkpaSnlxb0VmaDBT eU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pQdWdzNWs1TU9zVHQ2SlpKeXFvRWZoMFN5TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTFEMjIvMjg0MDAxRUM3QjFGMTFFQTg1OEJDRDg2QzRGOUFFMDIvMDQ3QTQyN0M3 RTJCMTFFQUIxQjVCMDBEQzRGOUFFMDIucm9hMD0GCCsGAQUFBwEHAQH/BC4wLDAS BAIAATAMAwQBZ16eAwQBZ8YIMBYEAgACMBADBwAgAQ3wigADBQAkBmhAMA0GCSqG SIb3DQEBCwUAA4IBAQBb4Ly9ZB+k1Gyhl+IbTNQVyyL/qJzGZzD0+lDrcmcZx76x kryieR5eGsNdWmSOQTPc14xwMQ5I4oylx5QbFSMAGhtRmvGXQ7b+s++2FtaBrl51 7XNEiRc43k9WKSLveinhvbilDIP3R/OWdzIBtzlmiZlG/6re6MvrZAVruabbK2UP nG2CvxYOmBcanj4BspGiPUT1HJJBOe3N58XzK4R/En06UnvpMsL63ZUK6GPbQbUk d/BxAQdmtk/KqytXqo++1uVSJr6djgnmDTvg0/6Yqka11K4NMrX8uajP9QQPGTNq BgJS9LxTL7Xjir8jHl5eSBLB1X+4pMPkzwaurk3F -----END CERTIFICATE-----Generated at Mon Mar 2 07:14:17 2026 by rpki-client